Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-10857 |
|
Privilege Escalation in cybozu (CVE-2017-10857)
vulnerability in cybozu (CVE-2017-10857). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2258 |
|
Path Traversal in path-traversal (CVE-2017-2258)
path traversal in path-traversal (CVE-2017-2258). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2257 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2257)
cross-site scripting in cybozu (CVE-2017-2257). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2256 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2256)
cross-site scripting in cybozu (CVE-2017-2256). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2255 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2255)
cross-site scripting in cybozu (CVE-2017-2255). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2254 |
|
Vulnerability in dos (CVE-2017-2254)
vulnerability in dos (CVE-2017-2254). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2146 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2146)
cross-site scripting in cybozu (CVE-2017-2146). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2144 |
|
Vulnerability in cybozu (CVE-2017-2144)
vulnerability in cybozu (CVE-2017-2144). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2145 |
|
Vulnerability in cybozu (CVE-2017-2145)
vulnerability in cybozu (CVE-2017-2145). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2172 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2172)
cross-site scripting in cybozu (CVE-2017-2172). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7833 |
|
Vulnerability in cybozu (CVE-2016-7833)
vulnerability in cybozu (CVE-2016-7833). Data can be tampered with by attackers.
|
| CVE-2016-7832 |
|
Information Disclosure in cybozu (CVE-2016-7832)
vulnerability in cybozu (CVE-2016-7832). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7803 |
|
SQL Injection in sqli (CVE-2016-7803)
SQL injection in sqli (CVE-2016-7803). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4906 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2016-4906)
cross-site scripting in cybozu (CVE-2016-4906). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4907 |
|
Cybozu Garoon 3.0.0 to 4.2.2 allow remote attackers to obtain CSRF tokens via unspecified vectors.
Cybozu Garoon 3.0.0 to 4.2.2 allow remote attackers to obtain CSRF tokens via unspecified vectors.
|
| CVE-2016-4908 |
|
Vulnerability in cybozu (CVE-2016-4908)
vulnerability in cybozu (CVE-2016-4908). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4909 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4909)
vulnerability in csrf (CVE-2016-4909). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4910 |
|
Vulnerability in cybozu (CVE-2016-4910)
vulnerability in cybozu (CVE-2016-4910). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7801 |
|
Vulnerability in dos (CVE-2016-7801)
vulnerability in dos (CVE-2016-7801). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7802 |
|
Path Traversal in path-traversal (CVE-2016-7802)
path traversal in path-traversal (CVE-2016-7802). Confidential information can be exposed externally.
|
| CVE-2016-7816 |
|
Vulnerability in cybozu (CVE-2016-7816)
vulnerability in cybozu (CVE-2016-7816). Confidential information can be exposed externally.
|
| CVE-2017-2116 |
|
Vulnerability in cybozu (CVE-2017-2116)
vulnerability in cybozu (CVE-2017-2116). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2115 |
|
Vulnerability in cybozu (CVE-2017-2115)
vulnerability in cybozu (CVE-2017-2115). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2114 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2114)
cross-site scripting in cybozu (CVE-2017-2114). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2093 |
|
Information Disclosure in csrf (CVE-2017-2093)
vulnerability in csrf (CVE-2017-2093). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2109 |
|
Information Disclosure in cybozu (CVE-2017-2109)
vulnerability in cybozu (CVE-2017-2109). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2095 |
|
Vulnerability in cybozu (CVE-2017-2095)
vulnerability in cybozu (CVE-2017-2095). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2094 |
|
Privilege Escalation in cybozu (CVE-2017-2094)
vulnerability in cybozu (CVE-2017-2094). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2092 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2017-2092)
cross-site scripting in cybozu (CVE-2017-2092). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2091 |
|
Vulnerability in cybozu (CVE-2017-2091)
vulnerability in cybozu (CVE-2017-2091). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7815 |
|
Vulnerability in cybozu (CVE-2016-7815)
vulnerability in cybozu (CVE-2016-7815). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1187 |
|
Information Disclosure in cybozu (CVE-2016-1187)
vulnerability in cybozu (CVE-2016-1187). Confidential information can be exposed externally.
|
| CVE-2016-1186 |
|
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates.
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates.
|
| CVE-2016-4841 |
|
Cybozu Mailwise before 5.4.0 allows remote attackers to inject arbitrary email headers.
Cybozu Mailwise before 5.4.0 allows remote attackers to inject arbitrary email headers.
|
| CVE-2016-1194 |
|
Cybozu Garoon before 4.2.1 allows remote attackers to cause a denial of service.
Cybozu Garoon before 4.2.1 allows remote attackers to cause a denial of service.
|
| CVE-2016-1216 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2016-1216)
cross-site scripting in cybozu (CVE-2016-1216). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1213 |
|
Open Redirect in cybozu (CVE-2016-1213)
vulnerability in cybozu (CVE-2016-1213). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1214 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2016-1214)
cross-site scripting in cybozu (CVE-2016-1214). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1215 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2016-1215)
cross-site scripting in cybozu (CVE-2016-1215). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1217 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2016-1217)
cross-site scripting in cybozu (CVE-2016-1217). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1218 |
|
SQL injection vulnerability in Cybozu Garoon before 4.2.2.
SQL injection vulnerability in Cybozu Garoon before 4.2.2.
|
| CVE-2016-1220 |
|
Cybozu Garoon before 4.2.2 does not properly restrict access.
Cybozu Garoon before 4.2.2 does not properly restrict access.
|
| CVE-2016-4842 |
|
Information Disclosure in cybozu (CVE-2016-4842)
vulnerability in cybozu (CVE-2016-4842). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4843 |
|
Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information.
Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information.
|
| CVE-2016-4844 |
|
Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks.
Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks.
|
| CVE-2016-1219 |
|
Authentication Bypass in cybozu (CVE-2016-1219)
authentication bypass in cybozu (CVE-2016-1219). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4865 |
|
Cross-Site Scripting (XSS) in cybozu (CVE-2016-4865)
cross-site scripting in cybozu (CVE-2016-4865). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4874 |
|
Vulnerability in cybozu (CVE-2016-4874)
vulnerability in cybozu (CVE-2016-4874). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4873 |
|
Vulnerability in cybozu (CVE-2016-4873)
vulnerability in cybozu (CVE-2016-4873). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4872 |
|
Information Disclosure in cybozu (CVE-2016-4872)
vulnerability in cybozu (CVE-2016-4872). Risk of unauthorized operations or information disclosure.
|